use sha256 with rsa keys for saml2, fix bug for authentication request's id
This commit is contained in:
parent
5cd1803e3a
commit
2aa1f76aab
|
@ -807,7 +807,7 @@ public class Saml2SSOUtils {
|
||||||
|
|
||||||
Credential credential = getCredential(provider.getSigningCert());
|
Credential credential = getCredential(provider.getSigningCert());
|
||||||
signature.setSigningCredential(credential);
|
signature.setSigningCredential(credential);
|
||||||
signature.setSignatureAlgorithm(SignatureConstants.ALGO_ID_SIGNATURE_DSA_SHA256);
|
signature.setSignatureAlgorithm(SignatureConstants.ALGO_ID_SIGNATURE_RSA_SHA256);
|
||||||
signature.setCanonicalizationAlgorithm(SignatureConstants.ALGO_ID_C14N_EXCL_OMIT_COMMENTS);
|
signature.setCanonicalizationAlgorithm(SignatureConstants.ALGO_ID_C14N_EXCL_OMIT_COMMENTS);
|
||||||
|
|
||||||
X509KeyInfoGeneratorFactory keyInfoGeneratorFactory = new X509KeyInfoGeneratorFactory();
|
X509KeyInfoGeneratorFactory keyInfoGeneratorFactory = new X509KeyInfoGeneratorFactory();
|
||||||
|
@ -853,7 +853,7 @@ public class Saml2SSOUtils {
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
authnRequest.setAssertionConsumerServiceURL(provider.getAssertionConsumerServiceUrl());
|
authnRequest.setAssertionConsumerServiceURL(provider.getAssertionConsumerServiceUrl());
|
||||||
authnRequest.setID(UUID.randomUUID().toString());
|
authnRequest.setID('_' + UUID.randomUUID().toString());
|
||||||
authnRequest.setIssuer(buildIssuer(provider.getSpEntityId()));
|
authnRequest.setIssuer(buildIssuer(provider.getSpEntityId()));
|
||||||
authnRequest.setNameIDPolicy(buildNameIdPolicy());
|
authnRequest.setNameIDPolicy(buildNameIdPolicy());
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue